It takes two: The 2025 Sophos Active Adversary Report

Investigate incidents in real time, quickly neutralize active threats, and prevent repeat attacks.

The rapid adoption of cloud services, SaaS applications, and the shift to remote work have fundamentally reshaped how enterprises operate. These technological advances have created a world of opportunity but also brought about complexities that pose significant security threats. At the core of these vulnerabilities lies Identity—the gateway to enterprise security and the number one…

Ransomware isn’t slowing down—it’s getting smarter. Encryption, designed to keep our online lives secure, is now being weaponized by cybercriminals to hide malware, steal data, and avoid detection.The result? A 10.3% surge in encrypted attacks over the past year and some of the most shocking ransom payouts in history, including a $75 million ransom in…

New research has uncovered exploitation primitives in the .NET Framework that could be leveraged against enterprise-grade applications to achieve remote code execution. WatchTowr Labs, which has codenamed the “invalid cast vulnerability” SOAPwn, said the issue impacts Barracuda Service Center RMM, Ivanti Endpoint Manager (EPM), and Umbraco 8. But the number of affected vendors is likely…

Matilda Battersby reports: A housing association’s broker has been found liable for “breach of duty” in a landmark High Court judgment. Watford Community Housing (WCH) brought a professional negligence claim against Arthur J Gallagher Insurance Brokers for failing to make “timely notifications” of a data breach to one of three of its insurers. Deputy High…

Dutch News reports: There are “strong indications” that Russia was behind a cyber attack on the Dutch public prosecution department’s internal systems, justice ministry sources have told the AD. The affected systems contain sensitive information on ongoing police investigations and court cases, as well as personal data on staff. The department has not yet said…